First of all: Intrusion detection is a really bad idea because you would block a lot of websites.A subset of rules would work with the URL filter - the cosmetic filters will not work on the proxy because it does not parse the HTML. This can be done via an ICAP-Service.